SlideShare a Scribd company logo

Cisco web ex cloud security

E
ebingeorge2010

Cisco web ex cloud security

Technology
1 of 12
Download to read offline
Unleashing the power of real-time collaboration: Security overview of Cisco WebEx solutions Whitepaper Unleashing the power of real-time collaboration: Security overview of Cisco WebEx solutions. WebEx Communications, Inc. 3979 Freedom Circle, Santa Clara, CA 95054 USA Main: +1.408.435.7000 Sales: +1.877.509.3239
Security overview of Cisco WebEx solutions whitepaper Table of contents Introduction 3 WebEx Collaboration Cloud infrastructure 4 The secure Cisco WebEx Meeting experience 5 Meeting site configuration 5 Scheduling security options 7 Starting and joining a WebEx meeting 8 Encryption technologies 9 Transport layer security 10 Firewall compatibility 10 Post meeting data storing 10 Single Sign On 10 Third party accreditation: independent audits validate Cisco WebEx security 12 2
Security overview of Cisco WebEx solutions whitepaper Introduction Enabling real-time collaboration to connect global employees and virtual teams is a growing trend among organizations seeking a competitive advantage. Worldwide, a large and growing number of businesses and government agencies rely on Cisco WebEx™ software-as a-service (SaaS) solutions to streamline business processes for sales, marketing, training, project management, and support. Cisco® makes security the top priority in the design, deployment, and maintenance of its WebEx® network, platform, and applications. So you can incorporate WebEx solutions into your ongoing business processes—instantly, and with confidence—even in environments with the most stringent security requirements. Understanding the security features of WebEx applications and the underlying communication infrastructure—the Cisco WebEx Collaboration Cloud—is an important component of your purchase decision. Discover detailed security information for: • WebEx Collaboration Cloud infrastructure • The secure WebEx meeting experience • Meeting site configuration • Scheduling security options • Starting and joining a WebEx meeting • Encryption technologies • Transport layer security • Firewall compatibility • Post meeting data storing • Single Sign On • Third-party accreditations: Independent audits validate Cisco WebEx security The terms “Cisco WebEx meeting(s)” and “Cisco WebEx meeting sessions” refer to the integrated audio conferencing, VoIP, and single- and multi-point video conferencing used in all Cisco WebEx products, which include: • Cisco WebEx Meeting Center • Cisco WebEx Training Center • Cisco WebEx Event Center • Cisco WebEx Support Center (including Cisco WebEx Remote Support and Cisco WebEx Remote Access) Unless otherwise specified, the security features described in this document pertain equally to all the WebEx applications and services mentioned above. 3
Security overview of Cisco WebEx solutions whitepaper Cisco WebEx meeting roles The 4 key roles in a WebEx meeting are Host, Alternate Host, Presenter, and Attendee. Host The Host schedules and starts WebEx meetings. The Host controls the in-meeting experience and—as the initial Presenter—can grant Presenter privileges to Attendees. The Host can start a session’s audio conferencing portion, as well as lock the meeting and expel Attendees. Alternate Host The Host appoints an Alternate Host. The Alternate Host can start a scheduled WebEx meeting in lieu of the Host. The Alternate Host has the same privileges as the Host and can control the meeting if the Host is unavailable. Presenter A Presenter shares presentations, specific applications, or the entire desktop. The Presenter controls the annotation tools and can grant and revoke remote control over the shared applications and desktop to individual Attendees. Attendee An Attendee has minimal responsibilities and typically views session content. WebEx Collaboration Cloud infrastructure The WebEx Collaboration Cloud is a communications infrastructure purpose- built for real-time web communications. Data centers strategically placed near major Internet access points use dedicated, high-bandwidth fiber to route traffic around the globe. Cisco WebEx Collaboration Cloud Switched architecture Cisco deploys a unique, globally-distributed, dedicated network of high- speed meeting switches. Meeting session data originating from the Presenter’s computer and arriving at the Attendees’ computers is switched— never persistently stored—through the WebEx Collaboration Cloud. The WebEx Collaboration Cloud enables a uniquely secure, extremely scalable, and highly available meeting infrastructure, unburdened by the physical limitations of on-premise server solutions. 4
Security overview of Cisco WebEx solutions whitepaper Data centers WebEx meeting sessions use switching equipment located in multiple data centers around the world. Cisco WebEx owns and operates all infrastructure used within the WebEx Collaboration Cloud. Currently this network consists of data centers in California (San Jose and Mountain View), Colorado, Virginia, the United Kingdom, Australia, Japan, and India. Cisco WebEx personnel are available 24x7 to provide required logistical security, operational, and change management support. Data center security personnel The Cisco WebEx business unit has a dedicated security department, which reports directly to the CIO of the Cisco WebEx Technology Group, and the CSO of Cisco. This team recommends and implements security procedures for WebEx products, services, and business operations. Team certifications include GIAC-Certified Forensic Analyst, CISSP, GIAC Certified Intrusion Analyst, ISSMP, and CISM. WebEx Technology Group security personnel receive ongoing training in all aspects of enterprise security from leading vendors and industry experts, in order to remain at the forefront of security innovation and to meet the criteria for security accreditations. The secure WebEx meeting experience Meeting site configuration The WebEx Site Administration module manages and enforces security policies for your customized WebEx site. Settings controlled at this level determine Host and Presenter privileges for scheduling meetings. For example, you may disable a Presenter’s ability to share applications or to transfer files on a per-site or a per-user basis by customizing session configurations to meet your business goals and security requirements. The WebEx Site Administration module manages these security-related features: Account management • Lock out an account after a configurable number of failed login attempts. • Automatically unlock a locked out account after a specified time interval. • Deactivate accounts after a defined period of inactivity. Specific user account management actions • Require a user to change password at next login. • Lock or unlock a user account. • Activate or deactivate a user account. 5
Security overview of Cisco WebEx solutions whitepaper Account creation • Require email confirmation of new accounts. • Require security text on new account requests. • Allow self-registration (sign-up) for new accounts. • Configure rules for self-registration for new accounts. Account passwords • Enforce strong account password criteria. • Configure the number of days before a temporary password expires. • Require Hosts to change account passwords at a configurable interval. • Require all Hosts to change account password at next login. Strong account password criteria • Minimum length. • Mixed case. • Minimum numeric. • Minimum alpha. • Minimum special characters. • Do not allow a character to be repeated 3 times or more. • Do not allow re-use of a specified number of previous passwords. • Do not allow dynamic text (site name, Host’s name, username). • Do not allow passwords from a configurable list (for example, “password”). • Minimum password change interval. Strong meeting password criteria • Require all meetings to have a password. • Minimum length. • Mixed case. • Minimum numeric. • Minimum alpha. • Minimum special characters. • Do not allow a character to be repeated 3 times or more. • Do not allow dynamic text (site name, Host’s name, username, meeting topic). • Do not allow passwords from a configurable list (for example, “password”). 6
Security overview of Cisco WebEx solutions whitepaper Personal Meeting Rooms—accessible using a personalized URL and password—help enable the Host to list scheduled and in-progress meetings, start and join meetings, and share files with meeting Attendees. You can use Site Administration to set security-related features for Personal Meeting Rooms. • Change the Personal Meeting Room URL. • Configure sharing options for files in the Personal Meeting Room. • Configure password requirements for files in the Personal Meeting Room. Other security-related features are enabled through WebEx Site Administration. • Allow any Host or Attendee to choose to store their name and email address to make joining successive meetings easier. • Allow Hosts to reassign recordings to other Hosts. • Restricted Site Access—the Site Administrator can require authentication for all Host and Attendee access. Authentication is required even to access any site information—such as listed meetings—as well as to gain access to meetings on the site. • Require strong meeting passwords for Cisco WebEx Remote Access sessions. • Require that all meetings are unlisted. You can request additional configurations from your WebEx Customer Success representative. • Require approval of “Forgot Password?” request. • Require Site Administrator to reset account passwords, rather than re-entering on behalf of a user. • Store passwords using one-way hashing. Scheduling security options Give individual Hosts the ability to specify meeting access security—within parameters configured at the Site Administration level, which cannot be overridden. • Schedule a meeting as unlisted so that it doesn’t display on the visible calendar. • Allow Attendees to join meetings before the Host joins. • Allow Attendees to join audio before the Host joins. • Display teleconference information in meeting. • End meetings automatically in a configurable time if only one Attendee remains. • Include Host key in meeting emails. • Require Attendees to enter their email address when joining meetings. 7
Security overview of Cisco WebEx solutions whitepaper Listed or unlisted meetings Hosts can opt to list a meeting in the public meeting calendar on your customized WebEx site. Or they can schedule the meeting as unlisted, so it never appears on a meeting calendar. Unlisted meetings require the Host to inform Attendees explicitly of the existence of the meeting—either through a link sent to Attendees using the email invitation process or by requiring the Attendee to enter the provided meeting number on the Join Meeting page. Internal or external meetings Hosts can restrict meeting Attendees to only those with an account on your customized WebEx site, as verified by their ability to log in to the site to join the meeting. Meeting passwords A Host can set a meeting password and then optionally choose to include or exclude the password in the meeting invitation email. Enrollment • Restrict meeting access with the enrollment feature. The Host generates an “access control list” allowing only Invitees who have enrolled and been explicitly approved by the Host to join. • Take greater control over the distribution of meeting access information by choosing not to send email invitations to a meeting. • Secure meetings by blocking the re-use of Registration IDs in the WBS27 versions of WebEx Training Center and WebEx Event Center. Any Attendee attempting to re-use a Registration ID already in use will be prevented from joining the meeting. In addition, a Host can maintain meeting security by restricting access and expelling participants. Fine-tune WebEx meetings using any combination of these scheduling options to support your security policies. Starting and joining a WebEx meeting A WebEx meeting starts after a Host’s user ID and password is authenticated by your customized WebEx site. The Host has initial control of the meeting and is the initial Presenter. The Host can grant or revoke Host or Presenter permissions to any Attendee, expel selected Attendees, or terminate the session at any time. The Host can appoint an Alternate Host to start and control the meeting in case the Host is unable to attend or loses their connection to the meeting. This keeps meetings more secure by eliminating the possibility the Host role will be assigned to an unexpected, or unauthorized, Attendee. 8
Security overview of Cisco WebEx solutions whitepaper You can configure your customized WebEx site to allow Attendees to join the meeting—including the audio portion—before the Host, and to limit the features available to early-joiners to chat and audio. When an Attendee joins a WebEx meeting for the first time, the WebEx application automatically downloads a complete file set to the Attendee’s computer. VeriSign issues digitally signed security certificates to these downloads, so the Attendee knows the files are from WebEx. In subsequent meetings, the WebEx application downloads only files containing changes or updates. Attendees can use the Uninstall function provided by their computer’s operating system to easily remove all WebEx files. The WebEx Collaboration Cloud protects each meeting session, and the dynamic data shared within. Encryption technologies Cisco WebEx meetings are designed to deliver real-time rich-media content securely to each Attendee within a Cisco WebEx meeting session. When a Presenter shares a document or a presentation, Universal Communications Format (UCF) a Cisco proprietary technology, encodes and optimizes the data for sharing. Cisco WebEx meetings provide these encryption mechanisms: 1) Data is transported from the client to the WebEx Collaboration Cloud using 128-bit Secure Socket Layer version3 (SSLv3). 2) Documents and presentations are encrypted end-to-end using 256-bit Advanced Encryption Standard (AES) prior to transport. 3) End-to-end (E2E) encryption is an option provided with WebEx Meeting Center version WBS26 and later. This method encrypts all meeting content, end-to-end, between meeting participants, using the AES encryption standard with a 256-bit key randomly-generated on the Host’s computer and distributed to Attendees with a public key-based mechanism. 4) Public Key Infrastructure (PKI) based end-to-end encryption is an option provided with WebEx Meeting Center version WBS27 and later, using the 256-bit AES encryption standard. The mechanism requires that Attendees have a X.509 certificate to start or join a meeting. Site administrators and Hosts can select either E2E or PKI using the “Meeting type” option. E2E and PKI solutions provide stronger security than AES alone (though E2E and PKI also use AES for the payload encryption) as the key is known only to the meeting Host and Attendees. 9
Security overview of Cisco WebEx solutions whitepaper Every Cisco WebEx meeting connection must authenticate properly prior to establishing a connection with the WebEx Collaboration Cloud to join a Cisco WebEx meeting. The client authentication process uses a unique per-client, per-session cookie to confirm the identity of each Attendee attempting to join a Cisco WebEx meeting. Each Cisco WebEx meeting contains a unique set of session parameters generated by the WebEx Collaboration Cloud. Each authenticated Attendee must have access both to these session parameters and the unique session cookie to join the Cisco WebEx meeting successfully. Transport layer security In addition to the application layer safeguards, all meeting data is transported using 128-bit SSLv3. Rather than using firewall port 80 (standard HTTP Internet traffic) to pass through the firewall, SSL uses firewall port 443 (HTTPS traffic), restricting access over port 80 without affecting WebEx traffic. WebEx Meeting Attendees connect to the WebEx Collaboration Cloud using a logical connection at the application/presentation/session layers. There is no peer-to-peer connection between Attendee’s computers. Firewall compatibility The WebEx Meeting Application communicates with the WebEx Collaboration Cloud to establish a reliable and secure connection using HTTPS (port 443) so your firewalls don’t have to be specially configured to enable Cisco WebEx meetings. Post meeting data storing No session information is retained on the WebEx Collaboration Cloud or on Attendee’s computers once the WebEx meeting concludes. Cisco retains only two types of meeting information. • Event Detail Records (EDR’s): Cisco uses EDR’s for billing and reporting. You may review event detail information on your customized WebEx site by logging in using your Host ID. Once authenticated, you can also download this data from your WebEx site or access it through WebEx APIs. • Network-based recording (NBR) files: If a Host chooses to record a WebEx meeting session, the recording will be stored within the WebEx Collaboration Cloud and can be accessed in the MyRecordings area on your customized WebEx site Single sign on Cisco supports federated authentication for user Single Sign On (SSO) using SAML 1.1, 2.0, and WS-Fed 1.0 protocols. Using federated authentication requires you to upload a public key X.509 certificate to your customized WebEx site. You then generate SAML assertions containing user attributes and digitally sign the assertions with the matching private key. WebEx validates the SAML assertion signature against the preloaded public key certificate before authenticating the user. 10
Security overview of Cisco WebEx solutions whitepaper Third-party accreditations: independent audits validate WebEx security Beyond its own stringent internal procedures, the WebEx Office of Security engages multiple independent third parties to conduct rigorous audits against internal policies, procedures, and applications. These audits are designed to validate mission-critical security requirements for both commercial and government applications. These auditors include Information Security Partners, LLC (iSEC Partners) for exhaustive network routing and application, and PriceWaterhouseCoopers, for SAS-70 Type II attestation, including auditing of controls against ISO 17799 controls. iSEC Network Routing iSEC Partners completed a variety of tests to confirm the routing to and from WebEx Meeting Attendees and the WebEx Collaboration Cloud. The tests covered both traces for WebEx production servers, and route confirmation traces for various network device configurations that included routers, firewalls, and load balancers. The results of this testing indicate that communication for U.S.-based WebEx sites does not route outside of the U.S. For more information, you may request a copy of this report from the WebEx Office of Security. iSEC Source Code Review iSEC Partners performs ongoing, in-depth code-assisted penetration tests and service assessments. During these engagements, iSEC Partners receives access to WebEx servers, source code, and engineering staff. Unlike black box testing, this high degree of access enables iSEC Partners to: • Identify critical application and/or service vulnerabilities and propose solutions. • Recommend general areas for architectural improvement. • Identify coding errors and provide guidance on coding practice improvements. • Work directly with WebEx engineering staff to explain findings and provide guidance for remediation work. For more information, you may request a copy of this report from the WebEx Office of Security SAS-70 Type II PricewaterhouseCoopers LLP performs an annual SAS-70 Type II audit in accordance with standards established by the AICPA. The controls audited against WebEx are based on ISO-17799 standards. This highly respected and recognized audit validates that WebEx services have been audited in-depth against control objectives and control activities (that often include controls over information technology and security related processes) with respect to handling and processing customer data. For additional information on the SAS-70 standard please see: www.sas70.com/index2.htm. For more information, you may request a copy of PricewaterhouseCoopers LLP SAS-70 report from the WebEx Office of Security via your Cisco account representative. 11
Security overview of Cisco WebEx solutions whitepaper ISO-17799 ISO-17799 is an internationally recognized information security standard published by the International Organization of Standardization (ISO) that provides best practice recommendations on information security management. It defines requirements for corporate security policies, data management, and access control, among other things. PricewaterhouseCoopers LLP compared WebEx security policies and practices to the control objectives described in ISO-17799, second edition for Information Technology - Security Techniques. The result of the audit was positive. In the opinion of PricewaterhouseCoopers WebEx services provide adequate controls as defined in this standard. For additional information on the ISO-17799 standard please see: www.iso.org/iso/support/faqs/faqs_widely_used_standards/widely_used_ standards_other/information_security.htm Conclusion Your organization can trust WebEx to enable collaboration and streamline business processes—in even the most stringent security environments. Choose easy to use, reliable, proven, and secure Software-as-a-Service collaboration solutions from WebEx. © 2009. WebEx Communications, Inc. All rights reserved. Cisco, WebEx, and Cisco WebEx are registered trademarks or trademarks of Cisco Systems, Inc. and/or its affiliates in the U.S. and certain other countries. All other trademarks are the property of their respective owners. Worldwide Sales Offices: Americas & Canada Australia China (Hong Kong) Tel: +1.877.509.3239 Tel: 1800 493 239 Tel: +852 8100 9802 AmericasInfo@webex.com AsiaPacInfo@webex.com hongkonginfo@webex.com Europe, Middle East & Africa New Zealand India Tel: +31 (0)20 4108 700 Tel: 0508 555 607 Tel: +91-080-22286377, europe@webex.com AsiaPacInfo@webex.com 17030 9800 indiasales@webex.com United Kingdom China Tel: 0800 389 9772 Tel: +86 800 819 3239 Japan europe@webex.com chinainfo@webex.com Tel: +81-3-6434-6044 JapanInfo@webex.com WP120 0908 US

Recommended

DerbyCon 7 - Hacking VDI, Recon and Attack Methods
DerbyCon 7 - Hacking VDI, Recon and Attack MethodsDerbyCon 7 - Hacking VDI, Recon and Attack Methods
DerbyCon 7 - Hacking VDI, Recon and Attack MethodsPatrick Coble
 
VDISecurity.org Overview
VDISecurity.org OverviewVDISecurity.org Overview
VDISecurity.org OverviewPatrick Coble
 
Microsoft Windows Azure - Security Best Practices for Developing Windows Azur...
Microsoft Windows Azure - Security Best Practices for Developing Windows Azur...Microsoft Windows Azure - Security Best Practices for Developing Windows Azur...
Microsoft Windows Azure - Security Best Practices for Developing Windows Azur...Microsoft Private Cloud
 
Azure for beginners series session 4
Azure for beginners series session 4Azure for beginners series session 4
Azure for beginners series session 4Lalit Rawat
 
VMworld 2013: NSX Security Solutions In Action - Deploying, Troubleshooting, ...
VMworld 2013: NSX Security Solutions In Action - Deploying, Troubleshooting, ...VMworld 2013: NSX Security Solutions In Action - Deploying, Troubleshooting, ...
VMworld 2013: NSX Security Solutions In Action - Deploying, Troubleshooting, ...VMworld
 
VMworld 2013: Introducing NSX Service Composer: The New Consumption Model for...
VMworld 2013: Introducing NSX Service Composer: The New Consumption Model for...VMworld 2013: Introducing NSX Service Composer: The New Consumption Model for...
VMworld 2013: Introducing NSX Service Composer: The New Consumption Model for...VMworld
 
VMworld 2013: Security Automation Workflows with NSX
VMworld 2013: Security Automation Workflows with NSX VMworld 2013: Security Automation Workflows with NSX
VMworld 2013: Security Automation Workflows with NSX VMworld
 
Security in the Cloud: Tips on How to Protect Your Data
Security in the Cloud: Tips on How to Protect Your DataSecurity in the Cloud: Tips on How to Protect Your Data
Security in the Cloud: Tips on How to Protect Your DataProcore Technologies
 

Recommended

DerbyCon 7 - Hacking VDI, Recon and Attack Methods
DerbyCon 7 - Hacking VDI, Recon and Attack MethodsDerbyCon 7 - Hacking VDI, Recon and Attack Methods
DerbyCon 7 - Hacking VDI, Recon and Attack MethodsPatrick Coble
 
VDISecurity.org Overview
VDISecurity.org OverviewVDISecurity.org Overview
VDISecurity.org OverviewPatrick Coble
 
Microsoft Windows Azure - Security Best Practices for Developing Windows Azur...
Microsoft Windows Azure - Security Best Practices for Developing Windows Azur...Microsoft Windows Azure - Security Best Practices for Developing Windows Azur...
Microsoft Windows Azure - Security Best Practices for Developing Windows Azur...Microsoft Private Cloud
 
Azure for beginners series session 4
Azure for beginners series session 4Azure for beginners series session 4
Azure for beginners series session 4Lalit Rawat
 
VMworld 2013: NSX Security Solutions In Action - Deploying, Troubleshooting, ...
VMworld 2013: NSX Security Solutions In Action - Deploying, Troubleshooting, ...VMworld 2013: NSX Security Solutions In Action - Deploying, Troubleshooting, ...
VMworld 2013: NSX Security Solutions In Action - Deploying, Troubleshooting, ...VMworld
 
VMworld 2013: Introducing NSX Service Composer: The New Consumption Model for...
VMworld 2013: Introducing NSX Service Composer: The New Consumption Model for...VMworld 2013: Introducing NSX Service Composer: The New Consumption Model for...
VMworld 2013: Introducing NSX Service Composer: The New Consumption Model for...VMworld
 
VMworld 2013: Security Automation Workflows with NSX
VMworld 2013: Security Automation Workflows with NSX VMworld 2013: Security Automation Workflows with NSX
VMworld 2013: Security Automation Workflows with NSX VMworld
 
Security in the Cloud: Tips on How to Protect Your Data
Security in the Cloud: Tips on How to Protect Your DataSecurity in the Cloud: Tips on How to Protect Your Data
Security in the Cloud: Tips on How to Protect Your DataProcore Technologies
 
Virtualization Security
Virtualization SecurityVirtualization Security
Virtualization Securitysyrinxtech
 
Identity Security - Azure Active Directory
Identity Security - Azure Active DirectoryIdentity Security - Azure Active Directory
Identity Security - Azure Active DirectoryEng Teong Cheah
 
Automated Security for the Real-time Enterprise with VMware NSX and Trend Mic...
Automated Security for the Real-time Enterprise with VMware NSX and Trend Mic...Automated Security for the Real-time Enterprise with VMware NSX and Trend Mic...
Automated Security for the Real-time Enterprise with VMware NSX and Trend Mic...Trend Micro
 
Cloud Security Guide - Ref Architecture and Gov. Model
Cloud Security Guide - Ref Architecture and Gov. ModelCloud Security Guide - Ref Architecture and Gov. Model
Cloud Security Guide - Ref Architecture and Gov. ModelVishal Sharma
 
Xen mobile Scalar Decisions EMM Sales-presentation April 25th, 2013
Xen mobile Scalar Decisions EMM Sales-presentation April 25th, 2013Xen mobile Scalar Decisions EMM Sales-presentation April 25th, 2013
Xen mobile Scalar Decisions EMM Sales-presentation April 25th, 2013patmisasi
 
What the auditor need to know about cloud computing
What the auditor need to know about cloud computingWhat the auditor need to know about cloud computing
What the auditor need to know about cloud computingMoshe Ferber
 
Transforming cloud security into an advantage
Transforming cloud security into an advantageTransforming cloud security into an advantage
Transforming cloud security into an advantageMoshe Ferber
 
Cloud Security Introduction
Cloud Security IntroductionCloud Security Introduction
Cloud Security IntroductionGLC Networks
 
New Charter Housing Trust
New Charter Housing TrustNew Charter Housing Trust
New Charter Housing TrustCisco Case Studies
 
Cloud security for financial services
Cloud security for financial servicesCloud security for financial services
Cloud security for financial servicesMoshe Ferber
 
Patch Tuesday - August 2017 - Ivanti
Patch Tuesday - August 2017 - IvantiPatch Tuesday - August 2017 - Ivanti
Patch Tuesday - August 2017 - IvantiErica Azad
 
(Pdf) yury chemerkin ita_2013
(Pdf) yury chemerkin ita_2013(Pdf) yury chemerkin ita_2013
(Pdf) yury chemerkin ita_2013STO STRATEGY
 
Architect secure cloud services.
Architect secure cloud services.Architect secure cloud services.
Architect secure cloud services.Moshe Ferber
 
Assessing security of your Active Directory
Assessing security of your Active DirectoryAssessing security of your Active Directory
Assessing security of your Active DirectoryAldo Elam Majiah
 
Access Security - Hybrid Identity
Access Security - Hybrid IdentityAccess Security - Hybrid Identity
Access Security - Hybrid IdentityEng Teong Cheah
 
Cloud Security
Cloud SecurityCloud Security
Cloud SecurityRashmi Agale
 
(Pdf) yury chemerkin deep_intel_2013
(Pdf) yury chemerkin deep_intel_2013(Pdf) yury chemerkin deep_intel_2013
(Pdf) yury chemerkin deep_intel_2013STO STRATEGY
 
2022 Q1 Webinar Securite du Cloud public (1).pdf
2022 Q1 Webinar Securite du Cloud public (1).pdf2022 Q1 Webinar Securite du Cloud public (1).pdf
2022 Q1 Webinar Securite du Cloud public (1).pdfYounesChafi1
 
September 2017 Patch Tuesday
September 2017 Patch TuesdaySeptember 2017 Patch Tuesday
September 2017 Patch TuesdayIvanti
 
Case_Study__Juniper_Expedient_2015
Case_Study__Juniper_Expedient_2015Case_Study__Juniper_Expedient_2015
Case_Study__Juniper_Expedient_2015John White
 
Cisco integrated system for microsoft azure stack
Cisco integrated system for microsoft azure stackCisco integrated system for microsoft azure stack
Cisco integrated system for microsoft azure stackAymen Mami
 
Bellevue Group
Bellevue GroupBellevue Group
Bellevue GroupCisco Case Studies
 

More Related Content

What's hot

Virtualization Security
Virtualization SecurityVirtualization Security
Virtualization Securitysyrinxtech
 
Identity Security - Azure Active Directory
Identity Security - Azure Active DirectoryIdentity Security - Azure Active Directory
Identity Security - Azure Active DirectoryEng Teong Cheah
 
Automated Security for the Real-time Enterprise with VMware NSX and Trend Mic...
Automated Security for the Real-time Enterprise with VMware NSX and Trend Mic...Automated Security for the Real-time Enterprise with VMware NSX and Trend Mic...
Automated Security for the Real-time Enterprise with VMware NSX and Trend Mic...Trend Micro
 
Cloud Security Guide - Ref Architecture and Gov. Model
Cloud Security Guide - Ref Architecture and Gov. ModelCloud Security Guide - Ref Architecture and Gov. Model
Cloud Security Guide - Ref Architecture and Gov. ModelVishal Sharma
 
Xen mobile Scalar Decisions EMM Sales-presentation April 25th, 2013
Xen mobile Scalar Decisions EMM Sales-presentation April 25th, 2013Xen mobile Scalar Decisions EMM Sales-presentation April 25th, 2013
Xen mobile Scalar Decisions EMM Sales-presentation April 25th, 2013patmisasi
 
What the auditor need to know about cloud computing
What the auditor need to know about cloud computingWhat the auditor need to know about cloud computing
What the auditor need to know about cloud computingMoshe Ferber
 
Transforming cloud security into an advantage
Transforming cloud security into an advantageTransforming cloud security into an advantage
Transforming cloud security into an advantageMoshe Ferber
 
Cloud Security Introduction
Cloud Security IntroductionCloud Security Introduction
Cloud Security IntroductionGLC Networks
 
Cloud security for financial services
Cloud security for financial servicesCloud security for financial services
Cloud security for financial servicesMoshe Ferber
 
Patch Tuesday - August 2017 - Ivanti
Patch Tuesday - August 2017 - IvantiPatch Tuesday - August 2017 - Ivanti
Patch Tuesday - August 2017 - IvantiErica Azad
 
(Pdf) yury chemerkin ita_2013
(Pdf) yury chemerkin ita_2013(Pdf) yury chemerkin ita_2013
(Pdf) yury chemerkin ita_2013STO STRATEGY
 
Architect secure cloud services.
Architect secure cloud services.Architect secure cloud services.
Architect secure cloud services.Moshe Ferber
 
Assessing security of your Active Directory
Assessing security of your Active DirectoryAssessing security of your Active Directory
Assessing security of your Active DirectoryAldo Elam Majiah
 
Access Security - Hybrid Identity
Access Security - Hybrid IdentityAccess Security - Hybrid Identity
Access Security - Hybrid IdentityEng Teong Cheah
 
(Pdf) yury chemerkin deep_intel_2013
(Pdf) yury chemerkin deep_intel_2013(Pdf) yury chemerkin deep_intel_2013
(Pdf) yury chemerkin deep_intel_2013STO STRATEGY
 
2022 Q1 Webinar Securite du Cloud public (1).pdf
2022 Q1 Webinar Securite du Cloud public (1).pdf2022 Q1 Webinar Securite du Cloud public (1).pdf
2022 Q1 Webinar Securite du Cloud public (1).pdfYounesChafi1
 
September 2017 Patch Tuesday
September 2017 Patch TuesdaySeptember 2017 Patch Tuesday
September 2017 Patch TuesdayIvanti
 
Case_Study__Juniper_Expedient_2015
Case_Study__Juniper_Expedient_2015Case_Study__Juniper_Expedient_2015
Case_Study__Juniper_Expedient_2015John White
 

What's hot (20)

Virtualization Security
Virtualization SecurityVirtualization Security
Virtualization Security
 
Identity Security - Azure Active Directory
Identity Security - Azure Active DirectoryIdentity Security - Azure Active Directory
Identity Security - Azure Active Directory
 
Automated Security for the Real-time Enterprise with VMware NSX and Trend Mic...
Automated Security for the Real-time Enterprise with VMware NSX and Trend Mic...Automated Security for the Real-time Enterprise with VMware NSX and Trend Mic...
Automated Security for the Real-time Enterprise with VMware NSX and Trend Mic...
 
Cloud Security Guide - Ref Architecture and Gov. Model
Cloud Security Guide - Ref Architecture and Gov. ModelCloud Security Guide - Ref Architecture and Gov. Model
Cloud Security Guide - Ref Architecture and Gov. Model
 
Xen mobile Scalar Decisions EMM Sales-presentation April 25th, 2013
Xen mobile Scalar Decisions EMM Sales-presentation April 25th, 2013Xen mobile Scalar Decisions EMM Sales-presentation April 25th, 2013
Xen mobile Scalar Decisions EMM Sales-presentation April 25th, 2013
 
What the auditor need to know about cloud computing
What the auditor need to know about cloud computingWhat the auditor need to know about cloud computing
What the auditor need to know about cloud computing
 
Transforming cloud security into an advantage
Transforming cloud security into an advantageTransforming cloud security into an advantage
Transforming cloud security into an advantage
 
Cloud Security Introduction
Cloud Security IntroductionCloud Security Introduction
Cloud Security Introduction
 
New Charter Housing Trust
New Charter Housing TrustNew Charter Housing Trust
New Charter Housing Trust
 
Cloud security for financial services
Cloud security for financial servicesCloud security for financial services
Cloud security for financial services
 
Patch Tuesday - August 2017 - Ivanti
Patch Tuesday - August 2017 - IvantiPatch Tuesday - August 2017 - Ivanti
Patch Tuesday - August 2017 - Ivanti
 
(Pdf) yury chemerkin ita_2013
(Pdf) yury chemerkin ita_2013(Pdf) yury chemerkin ita_2013
(Pdf) yury chemerkin ita_2013
 
Architect secure cloud services.
Architect secure cloud services.Architect secure cloud services.
Architect secure cloud services.
 
Assessing security of your Active Directory
Assessing security of your Active DirectoryAssessing security of your Active Directory
Assessing security of your Active Directory
 
Access Security - Hybrid Identity
Access Security - Hybrid IdentityAccess Security - Hybrid Identity
Access Security - Hybrid Identity
 
Cloud Security
Cloud SecurityCloud Security
Cloud Security
 
(Pdf) yury chemerkin deep_intel_2013
(Pdf) yury chemerkin deep_intel_2013(Pdf) yury chemerkin deep_intel_2013
(Pdf) yury chemerkin deep_intel_2013
 
2022 Q1 Webinar Securite du Cloud public (1).pdf
2022 Q1 Webinar Securite du Cloud public (1).pdf2022 Q1 Webinar Securite du Cloud public (1).pdf
2022 Q1 Webinar Securite du Cloud public (1).pdf
 
September 2017 Patch Tuesday
September 2017 Patch TuesdaySeptember 2017 Patch Tuesday
September 2017 Patch Tuesday
 
Case_Study__Juniper_Expedient_2015
Case_Study__Juniper_Expedient_2015Case_Study__Juniper_Expedient_2015
Case_Study__Juniper_Expedient_2015
 

Similar to Cisco web ex cloud security

Cisco integrated system for microsoft azure stack
Cisco integrated system for microsoft azure stackCisco integrated system for microsoft azure stack
Cisco integrated system for microsoft azure stackAymen Mami
 
Vblock Infrastructure Packages — integrated best-of-breed packages from VMwar...
Vblock Infrastructure Packages — integrated best-of-breed packages from VMwar...Vblock Infrastructure Packages — integrated best-of-breed packages from VMwar...
Vblock Infrastructure Packages — integrated best-of-breed packages from VMwar...Eric Sloof
 
Deploying WebEx Between Cloud and On-Prem for Canadian Customers
Deploying WebEx Between Cloud and On-Prem for Canadian CustomersDeploying WebEx Between Cloud and On-Prem for Canadian Customers
Deploying WebEx Between Cloud and On-Prem for Canadian CustomersCisco Canada
 
Transform your organization with cisco cloud
Transform your organization with cisco cloudTransform your organization with cisco cloud
Transform your organization with cisco cloudsolarisyougood
 
Supply chain with blockchain - Solution Brief
Supply chain with blockchain - Solution BriefSupply chain with blockchain - Solution Brief
Supply chain with blockchain - Solution BriefPablo Junco
 
Web Ex Connect Product Sheet 2009
Web Ex Connect Product Sheet 2009Web Ex Connect Product Sheet 2009
Web Ex Connect Product Sheet 2009Pambie
 
VMworld 2013: NSX PCI Reference Architecture Workshop Session 3 - Operational...
VMworld 2013: NSX PCI Reference Architecture Workshop Session 3 - Operational...VMworld 2013: NSX PCI Reference Architecture Workshop Session 3 - Operational...
VMworld 2013: NSX PCI Reference Architecture Workshop Session 3 - Operational...VMworld
 
Cisco VMDC Cloud Security 1.0 Design Guide
Cisco VMDC Cloud Security 1.0 Design GuideCisco VMDC Cloud Security 1.0 Design Guide
Cisco VMDC Cloud Security 1.0 Design GuideCisco Service Provider
 
Cisco VMDC Cloud Security 1.0 Design Guide
Cisco VMDC Cloud Security 1.0 Design GuideCisco VMDC Cloud Security 1.0 Design Guide
Cisco VMDC Cloud Security 1.0 Design GuideCisco Service Provider
 
New ThousandEyes Product Features and Release Highlights: July 2023
New ThousandEyes Product Features and Release Highlights: July 2023New ThousandEyes Product Features and Release Highlights: July 2023
New ThousandEyes Product Features and Release Highlights: July 2023ThousandEyes
 
Interview Questions for Microsoft Azure Architect Technologies AZ-303.pptx
Interview Questions for Microsoft Azure Architect Technologies AZ-303.pptxInterview Questions for Microsoft Azure Architect Technologies AZ-303.pptx
Interview Questions for Microsoft Azure Architect Technologies AZ-303.pptxinfosec train
 
Interview Questions for Microsoft Azure Architect Technologies AZ-303.pptx
Interview Questions for Microsoft Azure Architect Technologies AZ-303.pptxInterview Questions for Microsoft Azure Architect Technologies AZ-303.pptx
Interview Questions for Microsoft Azure Architect Technologies AZ-303.pptxInfosectrain3
 
Cisco’s Cloud Strategy, including our acquisition of CliQr
Cisco’s Cloud Strategy, including our acquisition of CliQr Cisco’s Cloud Strategy, including our acquisition of CliQr
Cisco’s Cloud Strategy, including our acquisition of CliQr Cisco Canada
 
Building multi tenant highly secured applications on .net for any cloud - dem...
Building multi tenant highly secured applications on .net for any cloud - dem...Building multi tenant highly secured applications on .net for any cloud - dem...
Building multi tenant highly secured applications on .net for any cloud - dem...kanimozhin
 
Techcello hp-arch workshop
Techcello hp-arch workshopTechcello hp-arch workshop
Techcello hp-arch workshopkanimozhin
 
Vce External Vmware Viewonvblock So
Vce External Vmware Viewonvblock SoVce External Vmware Viewonvblock So
Vce External Vmware Viewonvblock SoJoel E. Secory II
 
Secure Data Center for Enterprise
Secure Data Center for EnterpriseSecure Data Center for Enterprise
Secure Data Center for EnterpriseCisco Russia
 
Cisco connect montreal 2018 collaboration les services webex hybrides
Cisco connect montreal 2018 collaboration les services webex hybridesCisco connect montreal 2018 collaboration les services webex hybrides
Cisco connect montreal 2018 collaboration les services webex hybridesCisco Canada
 

Similar to Cisco web ex cloud security (20)

Cisco integrated system for microsoft azure stack
Cisco integrated system for microsoft azure stackCisco integrated system for microsoft azure stack
Cisco integrated system for microsoft azure stack
 
Bellevue Group
Bellevue GroupBellevue Group
Bellevue Group
 
Vblock Infrastructure Packages — integrated best-of-breed packages from VMwar...
Vblock Infrastructure Packages — integrated best-of-breed packages from VMwar...Vblock Infrastructure Packages — integrated best-of-breed packages from VMwar...
Vblock Infrastructure Packages — integrated best-of-breed packages from VMwar...
 
Deploying WebEx Between Cloud and On-Prem for Canadian Customers
Deploying WebEx Between Cloud and On-Prem for Canadian CustomersDeploying WebEx Between Cloud and On-Prem for Canadian Customers
Deploying WebEx Between Cloud and On-Prem for Canadian Customers
 
Transform your organization with cisco cloud
Transform your organization with cisco cloudTransform your organization with cisco cloud
Transform your organization with cisco cloud
 
Supply chain with blockchain - Solution Brief
Supply chain with blockchain - Solution BriefSupply chain with blockchain - Solution Brief
Supply chain with blockchain - Solution Brief
 
Web Ex Connect Product Sheet 2009
Web Ex Connect Product Sheet 2009Web Ex Connect Product Sheet 2009
Web Ex Connect Product Sheet 2009
 
VMworld 2013: NSX PCI Reference Architecture Workshop Session 3 - Operational...
VMworld 2013: NSX PCI Reference Architecture Workshop Session 3 - Operational...VMworld 2013: NSX PCI Reference Architecture Workshop Session 3 - Operational...
VMworld 2013: NSX PCI Reference Architecture Workshop Session 3 - Operational...
 
Cisco VMDC Cloud Security 1.0 Design Guide
Cisco VMDC Cloud Security 1.0 Design GuideCisco VMDC Cloud Security 1.0 Design Guide
Cisco VMDC Cloud Security 1.0 Design Guide
 
Cisco VMDC Cloud Security 1.0 Design Guide
Cisco VMDC Cloud Security 1.0 Design GuideCisco VMDC Cloud Security 1.0 Design Guide
Cisco VMDC Cloud Security 1.0 Design Guide
 
New ThousandEyes Product Features and Release Highlights: July 2023
New ThousandEyes Product Features and Release Highlights: July 2023New ThousandEyes Product Features and Release Highlights: July 2023
New ThousandEyes Product Features and Release Highlights: July 2023
 
Interview Questions for Microsoft Azure Architect Technologies AZ-303.pptx
Interview Questions for Microsoft Azure Architect Technologies AZ-303.pptxInterview Questions for Microsoft Azure Architect Technologies AZ-303.pptx
Interview Questions for Microsoft Azure Architect Technologies AZ-303.pptx
 
Interview Questions for Microsoft Azure Architect Technologies AZ-303.pptx
Interview Questions for Microsoft Azure Architect Technologies AZ-303.pptxInterview Questions for Microsoft Azure Architect Technologies AZ-303.pptx
Interview Questions for Microsoft Azure Architect Technologies AZ-303.pptx
 
Cisco’s Cloud Strategy, including our acquisition of CliQr
Cisco’s Cloud Strategy, including our acquisition of CliQr Cisco’s Cloud Strategy, including our acquisition of CliQr
Cisco’s Cloud Strategy, including our acquisition of CliQr
 
Building multi tenant highly secured applications on .net for any cloud - dem...
Building multi tenant highly secured applications on .net for any cloud - dem...Building multi tenant highly secured applications on .net for any cloud - dem...
Building multi tenant highly secured applications on .net for any cloud - dem...
 
Techcello hp-arch workshop
Techcello hp-arch workshopTechcello hp-arch workshop
Techcello hp-arch workshop
 
Sba web sec_dg
Sba web sec_dgSba web sec_dg
Sba web sec_dg
 
Vce External Vmware Viewonvblock So
Vce External Vmware Viewonvblock SoVce External Vmware Viewonvblock So
Vce External Vmware Viewonvblock So
 
Secure Data Center for Enterprise
Secure Data Center for EnterpriseSecure Data Center for Enterprise
Secure Data Center for Enterprise
 
Cisco connect montreal 2018 collaboration les services webex hybrides
Cisco connect montreal 2018 collaboration les services webex hybridesCisco connect montreal 2018 collaboration les services webex hybrides
Cisco connect montreal 2018 collaboration les services webex hybrides
 

Recently uploaded

The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfThe Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfEnterprise Knowledge
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountPuma Security, LLC
 
The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024Rafal Los
 
Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101Paola De la Torre
 
Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024The Digital Insurer
 
Slack Application Development 101 Slides
Slack Application Development 101 SlidesSlack Application Development 101 Slides
Slack Application Development 101 Slidespraypatel2
 
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...apidays
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Miguel Araújo
 
A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024Results
 
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptxEIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptxEarley Information Science
 
Automating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps ScriptAutomating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps Scriptwesley chun
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreternaman860154
 
CNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of ServiceCNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of Servicegiselly40
 
GenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day PresentationGenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day PresentationMichael W. Hawkins
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityPrincipled Technologies
 
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking MenDelhi Call girls
 
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...Neo4j
 
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Drew Madelung
 
Top 5 Benefits OF Using Muvi Live Paywall For Live Streams
Top 5 Benefits OF Using Muvi Live Paywall For Live StreamsTop 5 Benefits OF Using Muvi Live Paywall For Live Streams
Top 5 Benefits OF Using Muvi Live Paywall For Live StreamsRoshan Dwivedi
 
Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesUnblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesSinan KOZAK
 

Recently uploaded (20)

The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfThe Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
 
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path MountBreaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path Mount
 
The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024
 
Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101
 
Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024Tata AIG General Insurance Company - Insurer Innovation Award 2024
Tata AIG General Insurance Company - Insurer Innovation Award 2024
 
Slack Application Development 101 Slides
Slack Application Development 101 SlidesSlack Application Development 101 Slides
Slack Application Development 101 Slides
 
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
 
A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024A Call to Action for Generative AI in 2024
A Call to Action for Generative AI in 2024
 
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptxEIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
 
Automating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps ScriptAutomating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps Script
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreter
 
CNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of ServiceCNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of Service
 
GenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day PresentationGenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day Presentation
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivity
 
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
 
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
 
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
 
Top 5 Benefits OF Using Muvi Live Paywall For Live Streams
Top 5 Benefits OF Using Muvi Live Paywall For Live StreamsTop 5 Benefits OF Using Muvi Live Paywall For Live Streams
Top 5 Benefits OF Using Muvi Live Paywall For Live Streams
 
Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesUnblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen Frames
 

Cisco web ex cloud security

  • 1. Unleashing the power of real-time collaboration: Security overview of Cisco WebEx solutions Whitepaper Unleashing the power of real-time collaboration: Security overview of Cisco WebEx solutions. WebEx Communications, Inc. 3979 Freedom Circle, Santa Clara, CA 95054 USA Main: +1.408.435.7000 Sales: +1.877.509.3239
  • 2. Security overview of Cisco WebEx solutions whitepaper Table of contents Introduction 3 WebEx Collaboration Cloud infrastructure 4 The secure Cisco WebEx Meeting experience 5 Meeting site configuration 5 Scheduling security options 7 Starting and joining a WebEx meeting 8 Encryption technologies 9 Transport layer security 10 Firewall compatibility 10 Post meeting data storing 10 Single Sign On 10 Third party accreditation: independent audits validate Cisco WebEx security 12 2
  • 3. Security overview of Cisco WebEx solutions whitepaper Introduction Enabling real-time collaboration to connect global employees and virtual teams is a growing trend among organizations seeking a competitive advantage. Worldwide, a large and growing number of businesses and government agencies rely on Cisco WebEx™ software-as a-service (SaaS) solutions to streamline business processes for sales, marketing, training, project management, and support. Cisco® makes security the top priority in the design, deployment, and maintenance of its WebEx® network, platform, and applications. So you can incorporate WebEx solutions into your ongoing business processes—instantly, and with confidence—even in environments with the most stringent security requirements. Understanding the security features of WebEx applications and the underlying communication infrastructure—the Cisco WebEx Collaboration Cloud—is an important component of your purchase decision. Discover detailed security information for: • WebEx Collaboration Cloud infrastructure • The secure WebEx meeting experience • Meeting site configuration • Scheduling security options • Starting and joining a WebEx meeting • Encryption technologies • Transport layer security • Firewall compatibility • Post meeting data storing • Single Sign On • Third-party accreditations: Independent audits validate Cisco WebEx security The terms “Cisco WebEx meeting(s)” and “Cisco WebEx meeting sessions” refer to the integrated audio conferencing, VoIP, and single- and multi-point video conferencing used in all Cisco WebEx products, which include: • Cisco WebEx Meeting Center • Cisco WebEx Training Center • Cisco WebEx Event Center • Cisco WebEx Support Center (including Cisco WebEx Remote Support and Cisco WebEx Remote Access) Unless otherwise specified, the security features described in this document pertain equally to all the WebEx applications and services mentioned above. 3
  • 4. Security overview of Cisco WebEx solutions whitepaper Cisco WebEx meeting roles The 4 key roles in a WebEx meeting are Host, Alternate Host, Presenter, and Attendee. Host The Host schedules and starts WebEx meetings. The Host controls the in-meeting experience and—as the initial Presenter—can grant Presenter privileges to Attendees. The Host can start a session’s audio conferencing portion, as well as lock the meeting and expel Attendees. Alternate Host The Host appoints an Alternate Host. The Alternate Host can start a scheduled WebEx meeting in lieu of the Host. The Alternate Host has the same privileges as the Host and can control the meeting if the Host is unavailable. Presenter A Presenter shares presentations, specific applications, or the entire desktop. The Presenter controls the annotation tools and can grant and revoke remote control over the shared applications and desktop to individual Attendees. Attendee An Attendee has minimal responsibilities and typically views session content. WebEx Collaboration Cloud infrastructure The WebEx Collaboration Cloud is a communications infrastructure purpose- built for real-time web communications. Data centers strategically placed near major Internet access points use dedicated, high-bandwidth fiber to route traffic around the globe. Cisco WebEx Collaboration Cloud Switched architecture Cisco deploys a unique, globally-distributed, dedicated network of high- speed meeting switches. Meeting session data originating from the Presenter’s computer and arriving at the Attendees’ computers is switched— never persistently stored—through the WebEx Collaboration Cloud. The WebEx Collaboration Cloud enables a uniquely secure, extremely scalable, and highly available meeting infrastructure, unburdened by the physical limitations of on-premise server solutions. 4
  • 5. Security overview of Cisco WebEx solutions whitepaper Data centers WebEx meeting sessions use switching equipment located in multiple data centers around the world. Cisco WebEx owns and operates all infrastructure used within the WebEx Collaboration Cloud. Currently this network consists of data centers in California (San Jose and Mountain View), Colorado, Virginia, the United Kingdom, Australia, Japan, and India. Cisco WebEx personnel are available 24x7 to provide required logistical security, operational, and change management support. Data center security personnel The Cisco WebEx business unit has a dedicated security department, which reports directly to the CIO of the Cisco WebEx Technology Group, and the CSO of Cisco. This team recommends and implements security procedures for WebEx products, services, and business operations. Team certifications include GIAC-Certified Forensic Analyst, CISSP, GIAC Certified Intrusion Analyst, ISSMP, and CISM. WebEx Technology Group security personnel receive ongoing training in all aspects of enterprise security from leading vendors and industry experts, in order to remain at the forefront of security innovation and to meet the criteria for security accreditations. The secure WebEx meeting experience Meeting site configuration The WebEx Site Administration module manages and enforces security policies for your customized WebEx site. Settings controlled at this level determine Host and Presenter privileges for scheduling meetings. For example, you may disable a Presenter’s ability to share applications or to transfer files on a per-site or a per-user basis by customizing session configurations to meet your business goals and security requirements. The WebEx Site Administration module manages these security-related features: Account management • Lock out an account after a configurable number of failed login attempts. • Automatically unlock a locked out account after a specified time interval. • Deactivate accounts after a defined period of inactivity. Specific user account management actions • Require a user to change password at next login. • Lock or unlock a user account. • Activate or deactivate a user account. 5
  • 6. Security overview of Cisco WebEx solutions whitepaper Account creation • Require email confirmation of new accounts. • Require security text on new account requests. • Allow self-registration (sign-up) for new accounts. • Configure rules for self-registration for new accounts. Account passwords • Enforce strong account password criteria. • Configure the number of days before a temporary password expires. • Require Hosts to change account passwords at a configurable interval. • Require all Hosts to change account password at next login. Strong account password criteria • Minimum length. • Mixed case. • Minimum numeric. • Minimum alpha. • Minimum special characters. • Do not allow a character to be repeated 3 times or more. • Do not allow re-use of a specified number of previous passwords. • Do not allow dynamic text (site name, Host’s name, username). • Do not allow passwords from a configurable list (for example, “password”). • Minimum password change interval. Strong meeting password criteria • Require all meetings to have a password. • Minimum length. • Mixed case. • Minimum numeric. • Minimum alpha. • Minimum special characters. • Do not allow a character to be repeated 3 times or more. • Do not allow dynamic text (site name, Host’s name, username, meeting topic). • Do not allow passwords from a configurable list (for example, “password”). 6
  • 7. Security overview of Cisco WebEx solutions whitepaper Personal Meeting Rooms—accessible using a personalized URL and password—help enable the Host to list scheduled and in-progress meetings, start and join meetings, and share files with meeting Attendees. You can use Site Administration to set security-related features for Personal Meeting Rooms. • Change the Personal Meeting Room URL. • Configure sharing options for files in the Personal Meeting Room. • Configure password requirements for files in the Personal Meeting Room. Other security-related features are enabled through WebEx Site Administration. • Allow any Host or Attendee to choose to store their name and email address to make joining successive meetings easier. • Allow Hosts to reassign recordings to other Hosts. • Restricted Site Access—the Site Administrator can require authentication for all Host and Attendee access. Authentication is required even to access any site information—such as listed meetings—as well as to gain access to meetings on the site. • Require strong meeting passwords for Cisco WebEx Remote Access sessions. • Require that all meetings are unlisted. You can request additional configurations from your WebEx Customer Success representative. • Require approval of “Forgot Password?” request. • Require Site Administrator to reset account passwords, rather than re-entering on behalf of a user. • Store passwords using one-way hashing. Scheduling security options Give individual Hosts the ability to specify meeting access security—within parameters configured at the Site Administration level, which cannot be overridden. • Schedule a meeting as unlisted so that it doesn’t display on the visible calendar. • Allow Attendees to join meetings before the Host joins. • Allow Attendees to join audio before the Host joins. • Display teleconference information in meeting. • End meetings automatically in a configurable time if only one Attendee remains. • Include Host key in meeting emails. • Require Attendees to enter their email address when joining meetings. 7
  • 8. Security overview of Cisco WebEx solutions whitepaper Listed or unlisted meetings Hosts can opt to list a meeting in the public meeting calendar on your customized WebEx site. Or they can schedule the meeting as unlisted, so it never appears on a meeting calendar. Unlisted meetings require the Host to inform Attendees explicitly of the existence of the meeting—either through a link sent to Attendees using the email invitation process or by requiring the Attendee to enter the provided meeting number on the Join Meeting page. Internal or external meetings Hosts can restrict meeting Attendees to only those with an account on your customized WebEx site, as verified by their ability to log in to the site to join the meeting. Meeting passwords A Host can set a meeting password and then optionally choose to include or exclude the password in the meeting invitation email. Enrollment • Restrict meeting access with the enrollment feature. The Host generates an “access control list” allowing only Invitees who have enrolled and been explicitly approved by the Host to join. • Take greater control over the distribution of meeting access information by choosing not to send email invitations to a meeting. • Secure meetings by blocking the re-use of Registration IDs in the WBS27 versions of WebEx Training Center and WebEx Event Center. Any Attendee attempting to re-use a Registration ID already in use will be prevented from joining the meeting. In addition, a Host can maintain meeting security by restricting access and expelling participants. Fine-tune WebEx meetings using any combination of these scheduling options to support your security policies. Starting and joining a WebEx meeting A WebEx meeting starts after a Host’s user ID and password is authenticated by your customized WebEx site. The Host has initial control of the meeting and is the initial Presenter. The Host can grant or revoke Host or Presenter permissions to any Attendee, expel selected Attendees, or terminate the session at any time. The Host can appoint an Alternate Host to start and control the meeting in case the Host is unable to attend or loses their connection to the meeting. This keeps meetings more secure by eliminating the possibility the Host role will be assigned to an unexpected, or unauthorized, Attendee. 8
  • 9. Security overview of Cisco WebEx solutions whitepaper You can configure your customized WebEx site to allow Attendees to join the meeting—including the audio portion—before the Host, and to limit the features available to early-joiners to chat and audio. When an Attendee joins a WebEx meeting for the first time, the WebEx application automatically downloads a complete file set to the Attendee’s computer. VeriSign issues digitally signed security certificates to these downloads, so the Attendee knows the files are from WebEx. In subsequent meetings, the WebEx application downloads only files containing changes or updates. Attendees can use the Uninstall function provided by their computer’s operating system to easily remove all WebEx files. The WebEx Collaboration Cloud protects each meeting session, and the dynamic data shared within. Encryption technologies Cisco WebEx meetings are designed to deliver real-time rich-media content securely to each Attendee within a Cisco WebEx meeting session. When a Presenter shares a document or a presentation, Universal Communications Format (UCF) a Cisco proprietary technology, encodes and optimizes the data for sharing. Cisco WebEx meetings provide these encryption mechanisms: 1) Data is transported from the client to the WebEx Collaboration Cloud using 128-bit Secure Socket Layer version3 (SSLv3). 2) Documents and presentations are encrypted end-to-end using 256-bit Advanced Encryption Standard (AES) prior to transport. 3) End-to-end (E2E) encryption is an option provided with WebEx Meeting Center version WBS26 and later. This method encrypts all meeting content, end-to-end, between meeting participants, using the AES encryption standard with a 256-bit key randomly-generated on the Host’s computer and distributed to Attendees with a public key-based mechanism. 4) Public Key Infrastructure (PKI) based end-to-end encryption is an option provided with WebEx Meeting Center version WBS27 and later, using the 256-bit AES encryption standard. The mechanism requires that Attendees have a X.509 certificate to start or join a meeting. Site administrators and Hosts can select either E2E or PKI using the “Meeting type” option. E2E and PKI solutions provide stronger security than AES alone (though E2E and PKI also use AES for the payload encryption) as the key is known only to the meeting Host and Attendees. 9
  • 10. Security overview of Cisco WebEx solutions whitepaper Every Cisco WebEx meeting connection must authenticate properly prior to establishing a connection with the WebEx Collaboration Cloud to join a Cisco WebEx meeting. The client authentication process uses a unique per-client, per-session cookie to confirm the identity of each Attendee attempting to join a Cisco WebEx meeting. Each Cisco WebEx meeting contains a unique set of session parameters generated by the WebEx Collaboration Cloud. Each authenticated Attendee must have access both to these session parameters and the unique session cookie to join the Cisco WebEx meeting successfully. Transport layer security In addition to the application layer safeguards, all meeting data is transported using 128-bit SSLv3. Rather than using firewall port 80 (standard HTTP Internet traffic) to pass through the firewall, SSL uses firewall port 443 (HTTPS traffic), restricting access over port 80 without affecting WebEx traffic. WebEx Meeting Attendees connect to the WebEx Collaboration Cloud using a logical connection at the application/presentation/session layers. There is no peer-to-peer connection between Attendee’s computers. Firewall compatibility The WebEx Meeting Application communicates with the WebEx Collaboration Cloud to establish a reliable and secure connection using HTTPS (port 443) so your firewalls don’t have to be specially configured to enable Cisco WebEx meetings. Post meeting data storing No session information is retained on the WebEx Collaboration Cloud or on Attendee’s computers once the WebEx meeting concludes. Cisco retains only two types of meeting information. • Event Detail Records (EDR’s): Cisco uses EDR’s for billing and reporting. You may review event detail information on your customized WebEx site by logging in using your Host ID. Once authenticated, you can also download this data from your WebEx site or access it through WebEx APIs. • Network-based recording (NBR) files: If a Host chooses to record a WebEx meeting session, the recording will be stored within the WebEx Collaboration Cloud and can be accessed in the MyRecordings area on your customized WebEx site Single sign on Cisco supports federated authentication for user Single Sign On (SSO) using SAML 1.1, 2.0, and WS-Fed 1.0 protocols. Using federated authentication requires you to upload a public key X.509 certificate to your customized WebEx site. You then generate SAML assertions containing user attributes and digitally sign the assertions with the matching private key. WebEx validates the SAML assertion signature against the preloaded public key certificate before authenticating the user. 10
  • 11. Security overview of Cisco WebEx solutions whitepaper Third-party accreditations: independent audits validate WebEx security Beyond its own stringent internal procedures, the WebEx Office of Security engages multiple independent third parties to conduct rigorous audits against internal policies, procedures, and applications. These audits are designed to validate mission-critical security requirements for both commercial and government applications. These auditors include Information Security Partners, LLC (iSEC Partners) for exhaustive network routing and application, and PriceWaterhouseCoopers, for SAS-70 Type II attestation, including auditing of controls against ISO 17799 controls. iSEC Network Routing iSEC Partners completed a variety of tests to confirm the routing to and from WebEx Meeting Attendees and the WebEx Collaboration Cloud. The tests covered both traces for WebEx production servers, and route confirmation traces for various network device configurations that included routers, firewalls, and load balancers. The results of this testing indicate that communication for U.S.-based WebEx sites does not route outside of the U.S. For more information, you may request a copy of this report from the WebEx Office of Security. iSEC Source Code Review iSEC Partners performs ongoing, in-depth code-assisted penetration tests and service assessments. During these engagements, iSEC Partners receives access to WebEx servers, source code, and engineering staff. Unlike black box testing, this high degree of access enables iSEC Partners to: • Identify critical application and/or service vulnerabilities and propose solutions. • Recommend general areas for architectural improvement. • Identify coding errors and provide guidance on coding practice improvements. • Work directly with WebEx engineering staff to explain findings and provide guidance for remediation work. For more information, you may request a copy of this report from the WebEx Office of Security SAS-70 Type II PricewaterhouseCoopers LLP performs an annual SAS-70 Type II audit in accordance with standards established by the AICPA. The controls audited against WebEx are based on ISO-17799 standards. This highly respected and recognized audit validates that WebEx services have been audited in-depth against control objectives and control activities (that often include controls over information technology and security related processes) with respect to handling and processing customer data. For additional information on the SAS-70 standard please see: www.sas70.com/index2.htm. For more information, you may request a copy of PricewaterhouseCoopers LLP SAS-70 report from the WebEx Office of Security via your Cisco account representative. 11
  • 12. Security overview of Cisco WebEx solutions whitepaper ISO-17799 ISO-17799 is an internationally recognized information security standard published by the International Organization of Standardization (ISO) that provides best practice recommendations on information security management. It defines requirements for corporate security policies, data management, and access control, among other things. PricewaterhouseCoopers LLP compared WebEx security policies and practices to the control objectives described in ISO-17799, second edition for Information Technology - Security Techniques. The result of the audit was positive. In the opinion of PricewaterhouseCoopers WebEx services provide adequate controls as defined in this standard. For additional information on the ISO-17799 standard please see: www.iso.org/iso/support/faqs/faqs_widely_used_standards/widely_used_ standards_other/information_security.htm Conclusion Your organization can trust WebEx to enable collaboration and streamline business processes—in even the most stringent security environments. Choose easy to use, reliable, proven, and secure Software-as-a-Service collaboration solutions from WebEx. © 2009. WebEx Communications, Inc. All rights reserved. Cisco, WebEx, and Cisco WebEx are registered trademarks or trademarks of Cisco Systems, Inc. and/or its affiliates in the U.S. and certain other countries. All other trademarks are the property of their respective owners. Worldwide Sales Offices: Americas & Canada Australia China (Hong Kong) Tel: +1.877.509.3239 Tel: 1800 493 239 Tel: +852 8100 9802 AmericasInfo@webex.com AsiaPacInfo@webex.com hongkonginfo@webex.com Europe, Middle East & Africa New Zealand India Tel: +31 (0)20 4108 700 Tel: 0508 555 607 Tel: +91-080-22286377, europe@webex.com AsiaPacInfo@webex.com 17030 9800 indiasales@webex.com United Kingdom China Tel: 0800 389 9772 Tel: +86 800 819 3239 Japan europe@webex.com chinainfo@webex.com Tel: +81-3-6434-6044 JapanInfo@webex.com WP120 0908 US